Zhongbang CRMEB SQL Injection Vulnerability

Zhongbang CRMEB is an open source e-commerce management system of China Xi'an Zhongbang Network Zhongbang Company. Zhongbang CRMEB Mall System There is a SQL injection vulnerability in Zhongbang CRMEB Mall System V2.60 and V3.1 via the SQL injection vulnerability in the tablename parameter in...

CVE-2020-21394

SQL Injection vulnerability in Zhong Bang Technology Co., Ltd CRMEB mall system V2.60 and V3.1 via the tablename parameter in SystemDatabackup.php...

Sql injection

SQL Injection vulnerability in Zhong Bang Technology Co., Ltd CRMEB mall system V2.60 and V3.1 via the tablename parameter in SystemDatabackup.php...

CVE-2020-21394

The CVE-2020-21394 entry applies to Zhongbang CRMEB Mall System (open source) v2.60 and v3.1, where SQL injection is possible through the tablename parameter in SystemDatabackup.php. The underlying issue is a SQL injection vulnerability that can lead to unauthorized SQL commands with high impact ...